Senior Security Engineer
San Mateo, CA
Coupa Software, Inc.
See all of your business spend in one place with Coupa to make cost control, compliance and anything spend management related easier and more effective.Do you want to work for Coupa Software, the world's leading provider of cloud-based spend management solutions? We’re a company that had a successful IPO in October 2016 (NASDAQ: COUP) to fuel our innovation and growth. At Coupa, we’re building a great company that is laser focused on three core values:
1. Ensure Customer Success – Obsessive and unwavering commitment to making customers successful.2. Focus On Results – Relentless focus on delivering results through innovation and a bias for action.3. Strive For Excellence – Commitment to a collaborative environment infused with professionalism, integrity, passion, and accountability.
We are looking for a Senior Security Engineer to participate in operating and maintaining our security solutions across the Coupa Cloud platform. This role will involve developing the building blocks to secure the Coupa Cloud for our growing customer base and provide security in compliance with global laws and regulations. This is a hands-on role.
We need people who are self-motivated, have a strong desire to learn, a can-do attitude, tenacity to solve problems, team players, and results focused. We have an unwavering zeal to make our Customers Successful.
Responsibilities:
- Optimize and implement various security solutions and frameworks used within Coupa’s product development and production environments.
- Participate as a senior security engineer as an escalation point for security related events including: incidents, vulnerabilities, and compliance related controls within Coupa’s cloud based production services and platform
- Collaborate with Engineering and Operations teams to address security related issues
- Monitor and analyze security data to ensure we maintain and exceed key performance indicators
- Troubleshoot and document security incidents
- Produce and present security reports for Coupa functional teams and leadership
- Automation of security assessments and other security related SecOps tasks
- Resolve security issues from assessments and other sources
- Support and deliver upon assigned security projects
- Implement and maintain security solutions to detect and prevent security related risks including, but not limited to: firewalls, hids/fim, workload protection, antivirus, sast/dast, application security, single sign-on, and custom tools
- Contribute to Coupa’s security strategy
- Advocate Security best practices throughout Coupa
- Define and iterate upon best security practices
- Participate in Security Incident On-call rotation
Requirements:
- 5+ years of experience in an equivalent security related role
- Strong experience in web application security eg (XSS, CSRF, SQL injection)
- Familiarity with Cloud Computing and Software as a Service
- Hands-on operational experience with security tools such as Palo Alto Twistlock, Prisma Cloud, file integrity monitoring, firewalls, antivirus, Sonarqube, application security, Kibana, SSEC, Rapid7, BurpSuite, Nmap and SSO
- 2+ years of experience with automation using Java, Perl, PHP, Python, Ruby or equivalent
- Bonus if you have prior FinTech or financial services experience
- Strong communication skills; both written and oral
- Ability to work in a team environment
We take care of our employees every way we can, with competitive compensation packages, as well as restricted stock units, an Employee Stock Purchase Program (ESPP), comprehensive health benefits for employees and their families, a 401(k) match, a flexible work environment, no limit vacations for exempt employees, non-exempt employees are on an accrual basis for PTO, catered lunches…And much more!As part of our dedication to the diversity of our workforce, Coupa is committed to Equal Employment Opportunity without regard for race, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity or religion.
Please be advised, inquiries or resumes from recruiters will not be accepted.
Tags: Application security Automation Burp Suite Cloud Compliance CSRF DAST FinTech Firewalls Java Monitoring Nmap Perl PHP Python Ruby SAST SecOps Security assessment Security strategy SonarQube SQL SQL injection SSO Strategy Twistlock Vulnerabilities XSS
Perks/benefits: 401(k) matching Competitive pay Flex vacation Health care Salary bonus Signing bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs